Senior Security Engineer
San Francisco
Kandji
Kandji goes beyond Apple MDM solutions by connecting device security and device management. Welcome to Device Harmony.Kandji is the Apple Device Management and Security Platform. Kandji empowers companies to manage and secure Apple devices in the enterprise and at scale. By centrally securing and managing Mac, iPhone, iPad, and Apple TV devices, IT and InfoSec teams can save countless hours of manual, repetitive work with features like one-click compliance templates and more than 150 pre-built automations, apps, and workflows.
Device Harmony is our vision for tearing down the wall between IT and InfoSec to keep every Apple user secure and productive, using connected intelligence and automation. By choosing a career with Kandji, you will play an integral role in contributing to making our vision a reality. Backed by world-class investors such as Tiger Global, Greycroft, B Capital Group, Okta Ventures, the Spruce House Partnership, and First Round Capital, Kandji has raised over $100+M in capital to date.
Trusted by industry leaders, Kandji’s rapidly growing customer base includes companies like Ramp, Notion, Netskope, Noom, Turo, Groupon, VoxMedia, and more.
Recognized for its award-winning products, Kandji was recently named the #1 fastest-growing app in Okta’s 2023 Businesses at Work Report and a G2 Best Software 2023 Award Winner for Fastest Growing Products!
The Opportunity
Kandji is looking for a Senior Security Engineer to add to our dynamic team. The ideal candidate will have a strong background in supporting application development and product teams in cloud environments, working with SaaS applications, and building security practices into maturing organizations. This role will encompass a wide range of responsibilities, including detection engineering, threat modeling, and security operations and response.
How You'll Make a Difference Day to Day:
- Collaborate with application development teams to integrate security best practices into the software development lifecycle
- Conduct threat modeling exercises to identify and mitigate potential security risks
- Establish telemetry data across Kandji cloud environment, platforms, and technologies
- Deploy and optimize detection and response technologies (e.g., SIEM, IDS/IPS, EDR)
- Detect and respond to cyber threats and incidents using tools such as a SIEM, IDS, EDR, Firewalls and modern cloud platforms
- Lead incident response efforts to investigate and mitigate security breaches
- Conduct ad-hoc threat hunts in support of SecOps, detection, automations or tools
- Collaborate across functional teams (Product, Engineering, IT) to understand and protect all aspects of Kandji cyber footprint
- Mentor junior members of the security team and provide guidance on complex security issues
Minimum Qualifications:
- 4+ years of hands-on security operations experience in the modern cloud environments
- Hands-on experience with SIEM tooling and centralized logging (e.g. Panther, ELK, Splunk)
- Experience in: Writing and deploying threat-intelligence driven detections (endpoint, network, cloud, container), Securing cloud common cloud environments (AWS), Leveraging scripting languages for automation and integration (Bash, Python), Building and configuring detection-as-code frameworks
- Experience implementing and maturing security standards and frameworks such as NIST, ISO, and CIS
- Subject matter expert incident response lifecycle and implementation
- Strong fundamentals of Linux and Mac operating systems
- The desire to find evil
Competencies:
- Values Differences
- Communicates Effectively
- Instills Trust
- Action Oriented
- Drives Results
- Manages Complexity
- Manages Ambiguity
Benefits & Perks
• Competitive salary • 100% individual and dependent medical + dental + vision coverage • 401(k) with a 4% company match • 20 days PTO • 14 paid holidays per year • 10 health and wellness days per year • Kandji Wellness Week Off July 1 - July 5, 2024 • Equity for full-time employees • 12 weeks of paid leave for new parents • Cell phone & Internet stipend • Exciting opportunities for career growth • An outstanding, inclusive culture
We are excited to be serving a significant need for a fast-growing market, and are proud of the high-performing team we have brought together so far. If you’re someone who wants to engage in new, exciting projects that will challenge your skills in the best way possible, we would love to connect with you.
At Kandji we believe in fostering an inclusive environment in which employees feel encouraged to share their unique perspectives, leverage their strengths, and act authentically. We know that diverse teams are strong teams, and welcome those from all backgrounds and varying experiences.
Kandji is proud to be an equal opportunity employer committed to diversity and inclusion in the workplace. Qualified applicants will be considered for employment without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity, physical or mental disability, protected veteran or military status or any other status protected by applicable law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Bash Cloud Compliance EDR ELK Firewalls IDS Incident response IPS Linux NIST Okta Python SaaS Scripting SDLC SecOps SIEM Splunk
Perks/benefits: 401(k) matching Career development Cell phone stipend Competitive pay Equity Health care Medical leave Startup environment Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs